Create Tor Browser "package staging" machine
I'd like a machine where I can sync packages to and from our signing infrastructure. I could use perdulce, but I would rather use a system that isn't for general purpose and isn't directly remotely accessible (requires jumping through perdulce).
Specs:
- 100 GB disk
- 4 GB memory
Packages:
apt-get install libyaml-libyaml-perl libtemplate-perl \
libio-handle-util-perl libio-all-perl \
libio-captureoutput-perl libjson-perl libpath-tiny-perl \
libstring-shellquote-perl libsort-versions-perl \
libdigest-sha-perl libdata-uuid-perl libdata-dump-perl \
libfile-copy-recursive-perl libfile-slurp-perl git runc \
mercurial unzip genisoimage 7zip libfindbin-libs-perl \
libyaml-perl libfile-slurp-perl libdigest-sha-perl \
libxml-writer-perl libio-captureoutput-perl \
libparallel-forkmanager-perl libxml-libxml-perl \
libwww-perl libjson-perl
- Suggested Name:
tb-pkgstage-01
- Access:
sysrqb
update, install checklist:
-
ganeti install (in bullseye!) -
DNS (tb-pkgstage-01.torproject.org, forward and reverse) -
root password -
tmpfs -
DNS resolution -
nagios -
puppet bootstrap -
extra packages -
/srv -
dnswl (N/A) -
reboot -
user access
Edited by anarcat